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CLAIMS 

What is claimed is: 



1 LA method of secure communication, comprising: 

2 receiving a request for a data transaction from a client lacking hardware cryptography 

3 functionality, together with security parameters specific to the client, at a server through a 

4 secure connection between the client and the server; 

5 performing any necessary security processing for the requested data transaction 

6 within the server on behalf of the client utilizing hardware cryptography functionality 

7 «*. available within the server; and 

8 '4$ after performing any necessary security processing on the requested data transaction, 

9 forwarding the processed data transaction to a target of the requested data transaction as if 
1 0 originating from the client. 

."!g 

1 If? 2. The method of claim 1 , wherein the step of receiving a request for a data transaction 

2 H J from a client lacking hardware cryptography functionality, together with security parameters 
3C| specific to the client, at a server through a secure connection between the client and the 
4 s ' server further comprises : 

5 receiving the requested data transaction through an EPSEC connection. 

1 3. The method of claim 1 , wherein the step of receiving a request for a data transaction 

2 from a client lacking hardware cryptography functionality, together with security parameters 

3 specific to the client, at a server through a secure connection between the client and the 

4 server further comprises: 

5 receiving encryption keys or a digital certificate assigned to the client. 
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1 4. The method of claim 1, wherein the step of performing any necessary security 

2 processing for the requested data transaction within the server on behalf of the client utilizing 

3 hardware cryptography functionality available within the server further comprises: 

4 encrypting data within the requested data transaction; or 

5 generating a digital signature for attachment to the data transaction. 

1 5 . The method of claim 1 , wherein the step of forwarding the processed data transaction 

2 to a target of the requested data transaction as if originating from the client further comprises : 

3 _ forwarding the processed data transaction via an SSL transaction. 

6, The method of claim 1, further comprising: 

2 W receiving a response to the processed data transaction at the server; 

3- performing any security processing required by the response; and 

4]| forwarding the processed response, together with any results of the security 

processing, to the client via the secure connection. 

I 5 7. The method of claim 6, wherein the step of performing any security processing 

2 required by the response further comprises: 

3 decrypting the received response; or 

4 validating a digital signature attached to the received response. 
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1 8. A system for secure communication, comprising: 

2 a client lacking hardware cryptography functionality; 

3 a server including hardware cryptography functionality; 

4 a secure Internet Protocol connection between the client and the server; 

5 means for receiving a request for a data transaction from the client, together with 

6 security parameters specific to the client, at the server through the secure connection; 

7 means for performing any necessary security processing for the requested data 

8 transaction within the server on behalf of the client utilizing the hardware cryptography 

9 functionality available within the server; and 

1 0 means, responsive to completion of performing any necessary security processing on 

1 1 _ the requested data transaction, for forwarding the processed data transaction to a target of the 

1 2 jB requested data transaction as if originating from the client. 

& 9. The system of claim 8, wherein secure connection further comprises: 

2=i an IPSEC connection. 

IB 10. The system of claim 8, wherein the means for receiving a request for a data 

2 transaction from the client, together with security parameters specific to the client, at the 

3 server through the secure connection further comprises: 

4 means for securely receiving encryption keys or a digital certificate assigned to the 

5 client. 
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1 ■ 11. The system of claim 8, wherein the means for performing any necessary security 

2 processing for the requested data transaction within the server on behalf of the client utilizing 

3 hardware cryptography functionality available within the server further comprises: 

4 means for encrypting data within the requested data transaction; or 

5 means for generating a digital signature for attachment to the data transaction. 

1 12. The system of claim 8, wherein the means for forwarding the processed data 

2 transaction to a target of the requested data transaction as if originating from the client 

3 further comprises : 

4 _ means for forwarding the processed data transaction via an SSL transaction. 

1 J* 13. The system of claim 8, further comprising: 

2 W means for receiving a response to the processed data transaction at the server; 

3 =• means for performing any security processing required by the response; and 

4 ]X means for forwarding the processed response, together with any results of the security 

5 ^ processing, to the client via the secure connection. 

1 14. The system of claim 13, wherein the means for performing any security processing 

2 required by the response further comprises: 

3 means for decrypting the received response; or 

4 means for validating a digital signature attached to the received response. 
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15. A computer program product within a computer usable medium for secure 
communication, comprising: 

instructions for receiving a request for a data transaction from a client lacking 
hardware cryptography functionality, together with security parameters specific to the client, 
at a server through a secure connection between the client and the server; 

instructions for performing any necessary security processing for the requested data 
transaction within the server on behalf of the client utilizing hardware cryptography 
functionality available within the server; and 

instructions, responsive to completion of performing any necessary security 
processing on the requested data transaction, for forwarding the processed data transaction 
to a target of the requested data transaction as if originating from the client. 

1 6 . The computer program product of claim 1 5 , wherein the instructions for receiving a 
request for a data transaction from a client lacking hardware cryptography functionality, 
together with security parameters specific to the client, at a server through a secure 
connection between the client and the server further comprise: 

instructions for receiving the requested data transaction through an IPSEC 
connection. 

1 7. The computer program product of claim 1 5, wherein the instructions for receiving a 
request for a data transaction from a client lacking hardware cryptography functionality, 
together with security parameters specific to the client, at a server through a secure 
connection between the client and the server further comprise: 

instructions for securely receiving encryption keys or a digital certificate assigned to 
the client. 
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18. The computer program product of claim 15, wherein the instructions for performing 
any necessary security processing for the requested data transaction within the server on 
behalf of the client utilizing hardware cryptography functionality available within the server 
further comprise: 

instructions for encrypting data within the requested data transaction; or 
instructions for generating a digital signature for attachment to the data transaction. 

19. The computer program product of claim 1 5 , wherein the instructions for forwarding 
the processed data transaction to a target of the requested data transaction as if originating 
from the client further comprises: 

instructions for forwarding the processed data transaction via an SSL transaction. 

20. The computer program product of claim 15, further comprising: 

instructions for receiving a response to the processed data transaction at the server; 
instructions for performing any security processing required by the response; and 
instructions for forwarding the processed response, together with any results of the 
security processing, to the client via the secure connection. 

2 1 . The computer program product of claim 20, wherein the instructions for performing 
any security processing required by the response further comprise: 

instructions for decrypting the received response; or 

instructions for validating a digital signature attached to the received response. 



